$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/l0le8ZvMQzNPH580HPPVxqIi6zk.roa File: l0le8ZvMQzNPH580HPPVxqIi6zk.roa (raw, json) Hash identifier: zfUp1SnS2cySqPZ/le1bU7SanwjRUEYAYoW2pOhjnM8= Subject key identifier: 97:49:5E:F1:9B:CC:43:33:4F:1F:9F:34:1C:F3:D5:C6:A2:22:EB:39 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01B8 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/l0le8ZvMQzNPH580HPPVxqIi6zk.roa Signing time: Sun 31 Mar 2024 01:29:10 +0000 ROA not before: Sun 31 Mar 2024 01:29:10 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 124.96.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:10 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=97495EF19BCC43334F1F9F341CF3D5C6A222EB39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:20:b1:75:5b:73:7f:4d:e7:d6:6d:b8:57:5c: 0f:e4:56:22:c8:47:a7:c8:c9:53:4f:4e:4d:6c:41: a3:dd:71:77:40:70:62:f8:2e:e8:83:6a:cb:0b:c1: e9:d2:9a:f8:31:5a:28:34:af:2d:ab:7a:1b:04:aa: 66:c1:41:c5:5b:69:5b:7c:17:14:87:dc:1f:14:79: b8:3b:af:e9:df:33:97:25:32:0d:c9:3b:6f:d8:30: 4d:75:f7:10:1e:26:98:1f:f4:21:21:1a:a8:00:9d: 78:c4:b9:d3:ed:bd:af:26:69:49:ad:25:a1:87:02: 0e:3c:c0:1f:c7:62:d3:ef:de:d5:d5:99:18:f0:7f: e9:be:4f:89:e9:0c:d4:dc:18:f3:f2:ca:21:08:3a: 76:26:9b:7e:4b:55:1a:6a:a5:68:82:24:62:47:36: 9c:5a:ce:6a:98:3a:0b:96:17:f0:4a:e5:5b:82:00: c4:33:f6:f1:74:00:ba:ea:65:ea:91:75:d9:39:47: 97:5b:01:99:02:ea:3f:ca:38:62:1d:79:72:6d:cd: a1:c6:47:3e:1d:8d:89:25:66:30:8f:23:d5:2d:ca: 18:46:aa:e3:0b:5d:ad:4d:34:28:78:20:c8:81:eb: 01:29:3d:c4:5a:e1:e9:ba:a1:05:62:04:10:20:92: da:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:49:5E:F1:9B:CC:43:33:4F:1F:9F:34:1C:F3:D5:C6:A2:22:EB:39 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/l0le8ZvMQzNPH580HPPVxqIi6zk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.96.0.0/13 Signature Algorithm: sha256WithRSAEncryption 40:14:72:71:6a:31:c7:39:fb:c9:a2:52:63:d8:87:bb:79:6d: c9:21:b5:e2:34:6c:0e:99:28:27:a4:3b:3d:6a:47:48:2e:c3: 06:74:6e:e1:af:27:bb:5a:e3:39:d2:64:0e:89:52:7b:9e:5e: 34:f3:4c:3d:46:59:c1:72:dc:60:b6:0e:f5:b5:6b:98:1c:bf: 27:9b:c1:e7:ee:78:f9:bd:3a:bb:54:c6:82:5f:6f:58:e4:a2: f9:59:52:ed:fc:7a:85:69:22:6c:d2:c2:d1:8b:42:a3:73:39: 8e:e9:5c:2e:e4:3f:90:57:d9:19:4f:9f:d3:ad:85:eb:e1:f8: 25:0b:cd:ba:39:d7:c7:d6:7a:b5:25:bd:72:29:84:9e:e5:75: 45:47:60:3b:9e:a8:e0:6d:d0:6b:e0:1c:cf:b8:98:79:40:c1: d7:50:27:a7:83:7c:7c:59:9b:68:1d:6e:04:37:af:2a:ed:ed: 1d:a9:e0:63:ef:ca:8f:b3:24:74:34:64:16:84:50:ec:57:c6: 02:ab:3e:f0:ff:94:8a:56:e3:c4:1f:3d:11:b1:63:33:15:fb: 71:7b:c1:3c:d5:cd:4e:36:93:e8:ed:05:5f:83:de:ac:f0:03: 77:6e:d2:c7:67:04:c0:e2:d5:e8:68:d5:8a:1d:b7:cd:b6:fa: c2:1b:f2:f0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MTBaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk3NDk1RUYxOUJDQzQz MzM0RjFGOUYzNDFDRjNENUM2QTIyMkVCMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQILF1W3N/TefWbbhXXA/kViLIR6fIyVNPTk1sQaPdcXdAcGL4 LuiDassLwenSmvgxWig0ry2rehsEqmbBQcVbaVt8FxSH3B8Uebg7r+nfM5clMg3J O2/YME119xAeJpgf9CEhGqgAnXjEudPtva8maUmtJaGHAg48wB/HYtPv3tXVmRjw f+m+T4npDNTcGPPyyiEIOnYmm35LVRpqpWiCJGJHNpxazmqYOguWF/BK5VuCAMQz 9vF0ALrqZeqRddk5R5dbAZkC6j/KOGIdeXJtzaHGRz4djYklZjCPI9UtyhhGquML Xa1NNCh4IMiB6wEpPcRa4em6oQViBBAgktpXAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUl0le8ZvMQzNPH580HPPVxqIi6zkwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL2wwbGU4WnZNUXpOUEg1ODBIUFBWeHFJaTZ6ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwN8YDANBgkqhkiG9w0BAQsFAAOCAQEAQBRycWoxxzn7yaJSY9iHu3ltySG1 4jRsDpkoJ6Q7PWpHSC7DBnRu4a8nu1rjOdJkDolSe55eNPNMPUZZwXLcYLYO9bVr mBy/J5vB5+54+b06u1TGgl9vWOSi+VlS7fx6hWkibNLC0YtCo3M5julcLuQ/kFfZ GU+f062F6+H4JQvNujnXx9Z6tSW9cimEnuV1RUdgO56o4G3Qa+Acz7iYeUDB11An p4N8fFmbaB1uBDevKu3tHangY+/Kj7MkdDRkFoRQ7FfGAqs+8P+UilbjxB89EbFj MxX7cXvBPNXNTjaT6O0FX4PerPADd27Sx2cEwOLV6GjVih23zbb6whvy8A== -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:55 2024 by rpki-client on console-fra.rpki-client.org